View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2018-19962 severity important: SUSE including 126 source package names (xen, xen-4.0.3_21548_20-53.24.1, …), 239 product×package rows across 65 product lines (SLES for SAP Applications 11 SP3, SUSE CaaS Platform 3.0, … (65 product lines)): Fixed 212, Known Not Affected 27.
An issue was discovered in Xen through 4.11.x on AMD x86 platforms, possibly allowing guest OS users to gain host OS privileges because small IOMMU mappings are unsafely combined into larger ones.